JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2.25.175.237

2.25.175.237 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 71%: ?

71%

ISP	Hostinger Operations UAB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS47583
Hostname(s)	srv1734007.hstgr.cloud
Domain Name	hostinger.com
Country	🇺🇸 United States of America
City	Boston, Massachusetts

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2.25.175.237

Whois 2.25.175.237

IP Abuse Reports for 2.25.175.237:

This IP address has been reported a total of 19 times from 12 distinct sources. 2.25.175.237 was first reported on June 5th 2026, and the most recent report was 20 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-10 09:07:49 (20 minutes ago)	(mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 05:07:46.068285 2026] [security2:error] [pid 15094:tid 15094] [client 2.25.175.237:42898] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.wavecomputers.com"] [uri "/.git/HEAD"] [unique_id "aikpYr8B1QS1gjE3FGyPMAAAADw"], referer: https://waveitteam.com/.git/HEAD show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 06:16:13 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 02:16:09.474303 2026] [security2:error] [pid 821:tid 821] [client 2.25.175.237:32972] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "w0kem.com"] [uri "/.git/config"] [unique_id "aikBKdlnT2xO05fOu3dC2gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:22:16 (21 hours ago)	(mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:22:09.897543 2026] [security2:error] [pid 13557:tid 13557] [client 2.25.175.237:56114] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.ozarktulsa.com"] [uri "/.git/config"] [unique_id "aigFca8WA2ayndPoStm0VAAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 06:10:22 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 02:10:16.134650 2026] [security2:error] [pid 6246:tid 6246] [client 2.25.175.237:57216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chooseyourowntrail.com.robertmcatee.com"] [uri "/.git/HEAD"] [unique_id "aieuSF03X90_F8uL4nsVAwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 04:51:54 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 00:51:49.103923 2026] [security2:error] [pid 7304:tid 7304] [client 2.25.175.237:49208] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chyps.com"] [uri "/.git/HEAD"] [unique_id "aieb5Z4V80N6OsZJhzFU7QAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 03:16:52 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 2.25.175.237 (srv1734007.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 23:16:48.621459 2026] [security2:error] [pid 15178:tid 15178] [client 2.25.175.237:35942] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "christopherspizza.net"] [uri "/.git/config"] [unique_id "aieFoDUWXoTpibrTQs2ZmAAAAGU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-08 04:05:17 (2 days ago)	Abuse Detected (2)	Brute-Force Web App Attack
Anonymous	2026-06-07 18:20:02 (2 days ago)	suspicious request in access.log	Web App Attack
🇩🇪 Live Home Cams	2026-06-07 14:39:10 (2 days ago)	WebApp brute force attack detected. Multiple file scanning attempts from 2.25.175.237. Detected by f ... show more WebApp brute force attack detected. Multiple file scanning attempts from 2.25.175.237. Detected by fail2ban. show less	Web App Attack Brute-Force
🇳🇱 wlt-blocker	2026-06-07 13:31:01 (2 days ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 Starburst SysOp Team	2026-06-07 07:50:41 (3 days ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 237.175.25.2.rbl.malwar ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 237.175.25.2.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-nue6-2) show less	Hacking
🇩🇪 strxmpp	2026-06-07 04:56:42 (3 days ago)	2.25.175.237 - - [07/Jun/2026:06:56:41 +0200] "GET /.git/HEAD HTTP/1.1" 404 5621 "-" "Mozilla/5.0 (M ... show more 2.25.175.237 - - [07/Jun/2026:06:56:41 +0200] "GET /.git/HEAD HTTP/1.1" 404 5621 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15" ... show less	Bad Web Bot
🇳🇱 homeshowdomain.nl	2026-06-06 21:59:32 (3 days ago)	Auto-ban: >3000 req/min op 2026-06-06	Web App Attack SSH Hacking
🇩🇪 Ba-Yu	2026-06-06 19:56:22 (3 days ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇨🇭 4server	2026-06-06 15:22:32 (3 days ago)	[SatJun0617:22:26.6239852026][security2:error][pid2748161:tid2748414][client2.25.175.237:0]ModSecuri ... show more [SatJun0617:22:26.6239852026][security2:error][pid2748161:tid2748414][client2.25.175.237:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"studiokellybenessere.ch\"][uri\"/.git/config\"][unique_id\"aiQ7Msj49FfdT_JXrP71iAAAAQE\"] show less	Hacking Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.118.173.234

🇺🇸 162.216.150.122

🇯🇵 92.113.142.203

🇷🇴 80.94.92.184

🇵🇪 190.223.60.209

🇧🇷 179.222.191.185

🇺🇸 170.106.193.108

🇰🇷 119.195.102.159

🇮🇳 106.51.92.114

🇧🇬 78.128.113.74

🇺🇸 45.136.24.182

🇮🇳 4.224.59.75

🇧🇷 201.81.1.58

🇧🇷 189.113.47.155

🇮🇳 182.95.127.42

🇫🇮 147.185.133.137

🇲🇩 91.239.9.194

🇫🇷 91.196.152.119

🇳🇱 45.148.10.147

🇳🇱 45.148.10.141